View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-20364 severity low: SUSE including 19 source package names (libraw-devel-0.15.4-30.1, libraw-devel-0.18.9-3.8.1, …), 47 product×package rows across 29 product lines (SUSE Linux Enterprise Desktop 12 SP3, SUSE Linux Enterprise Desktop 12 SP4, … (29 product lines)): Fixed 47.
LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.